$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132303a3a2f34342d3434203d3e20323136303532.roa File: 326130363a313238333a623132303a3a2f34342d3434203d3e20323136303532.roa (raw, json) Hash identifier: vnwRKCsPU+khIK1Zb068/T8vTYhUnLI0jo4cXfzu2VI= Subject key identifier: 33:0F:20:72:3E:8C:45:15:73:3A:CE:E6:3A:4A:EF:DA:85:E1:94:97 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 26A9874AEC8C612A189C8AECE0D23643A740AF31 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132303a3a2f34342d3434203d3e20323136303532.roa Signing time: Sun 15 Sep 2024 14:36:42 +0000 ROA not before: Sun 15 Sep 2024 14:31:42 +0000 ROA not after: Sun 14 Sep 2025 14:36:42 +0000 asID: 216052 IP address blocks: 2a06:1283:b120::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 05:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a9:87:4a:ec:8c:61:2a:18:9c:8a:ec:e0:d2:36:43:a7:40:af:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:42 2024 GMT Not After : Sep 14 14:36:42 2025 GMT Subject: CN=330F20723E8C4515733ACEE63A4AEFDA85E19497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:74:ea:f4:0c:74:25:d5:42:ec:1e:06:f3: d6:ac:d8:79:05:a3:27:98:65:1d:b4:ab:12:fe:2b: b2:55:d6:2e:d8:bd:d7:e6:1d:82:e3:f6:13:4e:89: d8:cd:e5:82:bc:30:9a:e4:3f:98:cb:66:4a:f4:59: 0d:9a:6c:f3:02:5b:d6:5f:7a:38:c6:60:dc:32:c4: da:f7:49:0c:73:68:38:09:65:54:46:7c:74:0a:6b: 9e:c5:18:b9:ec:a6:54:a6:9a:cd:b9:be:f6:25:11: 19:27:e7:5a:0b:55:85:93:91:5d:43:25:29:45:f8: bf:5a:20:fa:3c:c1:3e:a2:06:82:40:ca:d9:6f:a4: bd:2c:b2:94:ec:8c:bf:ac:79:34:0b:49:2d:5c:37: 6e:2e:37:a0:20:d2:48:2b:cb:2f:77:be:e9:d2:ce: 05:d4:0b:a5:65:ad:fa:75:0c:f6:ce:50:b1:7e:29: 28:7e:75:0c:4d:72:67:15:b6:cc:b0:2a:1b:80:b8: cb:e7:26:52:a5:1b:4f:55:cf:cf:5d:f2:0a:51:b1: 4b:9e:dc:2d:5f:52:b2:d7:67:ff:df:b4:0b:4d:fd: cf:13:6b:48:91:d9:f7:8f:76:ad:70:a5:95:dd:e5: 3e:5b:2d:87:0b:69:c0:12:d5:68:3b:64:af:9e:1f: 7e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:0F:20:72:3E:8C:45:15:73:3A:CE:E6:3A:4A:EF:DA:85:E1:94:97 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132303a3a2f34342d3434203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b120::/44 Signature Algorithm: sha256WithRSAEncryption 1d:cb:a5:0a:22:bf:ff:92:1c:44:bc:ba:cd:96:ea:ca:5f:15: 7e:a5:f6:76:aa:de:1f:47:79:ea:e7:6a:7a:11:0e:a7:f6:ea: 8f:b3:fb:ae:7e:5b:3b:6a:40:92:79:b9:d7:d5:aa:c0:11:fb: ca:a7:46:69:a5:ee:e3:50:18:ff:54:39:2a:5a:31:0f:66:71: 90:8f:db:99:d4:b9:41:bf:a9:50:b7:9a:87:52:d5:96:e1:4f: af:54:94:33:a8:64:2a:e1:ad:1f:d1:38:bf:0a:7e:e5:f6:7a: 79:1c:81:69:b6:cb:6d:11:33:57:ca:af:28:57:a6:e9:6e:d6: e8:ca:bb:5e:79:66:b8:b1:25:92:b2:a7:20:6b:d5:12:d1:c9: 6e:13:90:a6:9d:83:7c:b2:e1:5d:c4:63:34:cc:0b:02:8d:87: 90:40:de:ae:ed:6a:8d:f3:ee:23:a2:a2:9d:c9:22:e4:0a:49: fc:aa:21:f3:a3:b2:44:b2:07:ab:4f:aa:75:49:78:db:27:a8: 65:04:f4:16:01:31:09:46:48:70:d0:79:34:c3:b1:ea:86:3d: f5:2a:3e:5d:f6:22:1a:b6:bf:fb:34:e4:1f:ac:6d:36:37:3d: 17:ea:56:a8:d3:1a:cc:90:6d:d4:de:ee:a7:ba:23:93:2c:42: d7:d5:b5:6b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUJqmHSuyMYSoYnIrs4NI2Q6dArzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDJaFw0yNTA5MTQxNDM2NDJaMDMxMTAvBgNV BAMTKDMzMEYyMDcyM0U4QzQ1MTU3MzNBQ0VFNjNBNEFFRkRBODVFMTk0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2e3Tq9Ax0JdVC7B4G89as2HkF oyeYZR20qxL+K7JV1i7YvdfmHYLj9hNOidjN5YK8MJrkP5jLZkr0WQ2abPMCW9Zf ejjGYNwyxNr3SQxzaDgJZVRGfHQKa57FGLnsplSmms25vvYlERkn51oLVYWTkV1D JSlF+L9aIPo8wT6iBoJAytlvpL0sspTsjL+seTQLSS1cN24uN6Ag0kgryy93vunS zgXUC6Vlrfp1DPbOULF+KSh+dQxNcmcVtsywKhuAuMvnJlKlG09Vz89d8gpRsUue 3C1fUrLXZ//ftAtN/c8Ta0iR2fePdq1wpZXd5T5bLYcLacAS1Wg7ZK+eH363AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUMw8gcj6MRRVzOs7mOkrv2oXhlJcwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxMzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoOxIDANBgkqhkiG9w0BAQsFAAOCAQEAHculCiK//5IcRLy6 zZbqyl8VfqX2dqreH0d56udqehEOp/bqj7P7rn5bO2pAknm519WqwBH7yqdGaaXu 41AY/1Q5KloxD2ZxkI/bmdS5Qb+pULeah1LVluFPr1SUM6hkKuGtH9E4vwp+5fZ6 eRyBabbLbREzV8qvKFem6W7W6Mq7XnlmuLElkrKnIGvVEtHJbhOQpp2DfLLhXcRj NMwLAo2HkEDeru1qjfPuI6Kincki5ApJ/Koh86OyRLIHq0+qdUl42yeoZQT0FgEx CUZIcNB5NMOx6oY99So+XfYiGra/+zTkH6xtNjc9F+pWqNMazJBt1N7up7ojkyxC 19W1aw== -----END CERTIFICATE-----Generated at Sun Nov 24 18:42:04 2024 by rpki-client on console-fra.rpki-client.org